DocuSign has observed a new phishing campaign that began the morning of August 22nd (Pacific Time). The email purports to come from DocuSign using the email addresses [email protected]. The emails all have the subject:

These emails contain links to a malicious Word document. These emails are not sent from DocuSign. Do not open the attachment in these emails, instead please forward them to [email protected] and then delete the email immediately.